CVE-2023-34193

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2023-34193
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-34193.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2023-34193
Published
2023-07-06T00:00:00Z
Modified
2026-05-07T04:16:27.312764Z
Summary
[none]
Details

File Upload vulnerability in Zimbra ZCS 8.8.15 allows an authenticated privileged user to execute arbitrary code and obtain sensitive information via the ClientUploader function.

Database specific 
{
    "cna_assigner": "mitre",
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/34xxx/CVE-2023-34193.json"
}
References

Affected packages

Git / github.com/zimbra/zm-build

Affected ranges

Type
GIT
Repo
https://github.com/zimbra/zm-build
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
ac6081fa002b1511e926aba37740d2b6c20f3f43
Last affected
29eea219faf34718f0ef1cda7c3f02c89910c96c
Last affected
62480d2f6aace77ee01bb4b8f46a3eff49cbdfd3
Last affected
71b1626efff0a90ba64ff3e5ab192683e6dccc9a
Last affected
905970576d6fe337150f09c0ad7a0f53aa1a8f42
Last affected
5ae8f73501330bc788daed9c82c1222857d85b8b
Last affected
fe985a33cb83f82816a1e8f93d8d864112a6504e
Last affected
b7209ef3fd859fda5537cc7fbfdeb97cbd1ab931
Last affected
6c2b2cd41fa3625cbd1c12f4e14e07eece395a31
Last affected
3dbd48fe84d22132463b3758e3a40be19267fc9f
Last affected
dbb831c2de39b20cda7ea1e0063645d3cb6d1770
Last affected
0e40da921adb967639011de45841cef4c4601413
Database specific 
{
    "extracted_events": [
        {
            "introduced": "0"
        },
        {
            "last_affected": "8.8.15-NA"
        },
        {
            "last_affected": "8.8.15-p1"
        },
        {
            "last_affected": "8.8.15-p11"
        },
        {
            "last_affected": "8.8.15-p20"
        },
        {
            "last_affected": "8.8.15-p26"
        },
        {
            "last_affected": "8.8.15-p3"
        },
        {
            "last_affected": "8.8.15-p30"
        },
        {
            "last_affected": "8.8.15-p31"
        },
        {
            "last_affected": "8.8.15-p32"
        },
        {
            "last_affected": "8.8.15-p33"
        },
        {
            "last_affected": "8.8.15-p34"
        },
        {
            "last_affected": "8.8.15-p35"
        },
        {
            "last_affected": "8.8.15-p5"
        }
    ],
    "cpe": [
        "cpe:2.3:a:zimbra:collaboration:8.8.15:-:*:*:*:*:*:*",
        "cpe:2.3:a:zimbra:collaboration:8.8.15:p1:*:*:*:*:*:*",
        "cpe:2.3:a:zimbra:collaboration:8.8.15:p11:*:*:*:*:*:*",
        "cpe:2.3:a:zimbra:collaboration:8.8.15:p20:*:*:*:*:*:*",
        "cpe:2.3:a:zimbra:collaboration:8.8.15:p26:*:*:*:*:*:*",
        "cpe:2.3:a:zimbra:collaboration:8.8.15:p3:*:*:*:*:*:*",
        "cpe:2.3:a:zimbra:collaboration:8.8.15:p30:*:*:*:*:*:*",
        "cpe:2.3:a:zimbra:collaboration:8.8.15:p31:*:*:*:*:*:*",
        "cpe:2.3:a:zimbra:collaboration:8.8.15:p32:*:*:*:*:*:*",
        "cpe:2.3:a:zimbra:collaboration:8.8.15:p33:*:*:*:*:*:*",
        "cpe:2.3:a:zimbra:collaboration:8.8.15:p34:*:*:*:*:*:*",
        "cpe:2.3:a:zimbra:collaboration:8.8.15:p35:*:*:*:*:*:*",
        "cpe:2.3:a:zimbra:collaboration:8.8.15:p5:*:*:*:*:*:*"
    ],
    "source": "CPE_FIELD"
}

Affected versions

8.*
8.8.15
8.8.15.U20
8.8.15.p11
8.8.15.p26
8.8.15.p3
8.8.15.p30
8.8.15.p31
8.8.15.p32
8.8.15.p33
8.8.15.p34
8.8.15.p35
8.8.15.p5

Database specific

source 
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-34193.json"